Vulnerability Database
296,748
Total vulnerabilities in the database
gosaml2 is vulnerable to NULL Pointer Dereference
This affects all versions less than 0.7.0 of package github.com/russellhaering/gosaml2. There is a crash on null pointer dereference caused by sending malformed XML signatures.
| Software | From | Fixed in |
|---|---|---|
github.com/russellhaering/gosaml2
|
- | 0.7.0 |
|
github.com/russellhaering/goxmldsig
|
- | 1.1.1 |
- https://github.com/russellhaering/gosaml2/commit/66e3b7affd622b8b24ea1e18845f045e46b23424
- https://github.com/russellhaering/gosaml2/issues/59
- https://github.com/russellhaering/gosaml2/pull/90
- https://github.com/russellhaering/gosaml2/releases/tag/v0.7.0
- https://github.com/russellhaering/goxmldsig/issues/48
- https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMRUSSELLHAERINGGOSAML2-608302
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime